Description
Squish Site Patrol gives you a complete health check for your WordPress site in one place — page speed, security, and malware scanning in a single clean dashboard.
Page Speed
* Live Google PageSpeed Insights score
* Core Web Vitals — LCP, FCP, and CLS
* Mobile performance scoring
* Scan any public URL
Security
* WordPress core version check
* Detects predictable “admin” username
* Plugin update status
* SSL / HTTPS detection
* File editor status check
Malware Scanner
* Verifies all 3,000+ WordPress core files against official checksums
* Detects PHP files hidden in your uploads folder
* Flags any modified core files
Squish Site Patrol Patched — $15/mo
Upgrade to Patched for automatic scans and advanced monitoring:
- Scheduled automatic daily scans
- Email scan reports
- Failed login attempt monitoring
- wp-config.php permissions check
- SSL certificate expiry alerts
- Real-time file monitoring
- Up to 3 sites
External Services
This plugin connects to the following external services:
Google PageSpeed Insights API
Used to analyze page speed and Core Web Vitals for any URL entered by the user. Data sent: the URL being scanned. This call is only made when the user clicks “Run scan”.
* Service: https://developers.google.com/speed/docs/insights/v5/about
* Privacy: https://policies.google.com/privacy
* Terms: https://developers.google.com/terms
Google Safe Browsing API
Used to check if a URL has been flagged for malware or phishing. Data sent: the URL being scanned. This call is only made when the user clicks “Run scan”.
* Service: https://developers.google.com/safe-browsing
* Privacy: https://policies.google.com/privacy
* Terms: https://developers.google.com/terms
WordPress.org Checksums API
Used to verify the integrity of WordPress core files by comparing them against official checksums. No user data is sent — only the WordPress version number and locale.
* Service: https://api.wordpress.org/core/checksums/1.0/
* Privacy: https://wordpress.org/about/privacy/
Freemius
Used to manage the Patched premium subscription, licensing, and payments. Data sent upon upgrade: site URL, WordPress version, plugin version, and user email if the user opts in.
* Service: https://freemius.com
* Privacy: https://freemius.com/privacy/
* Terms: https://freemius.com/terms/
Installation
- Upload the plugin files to
/wp-content/plugins/squish-site-patrol - Activate the plugin through the Plugins screen in WordPress
- Go to Squish Site Patrol Settings and enter your Google API key
- Click Squish Site Patrol in the sidebar and run your first scan
Where do I get a Google API key?
Go to console.cloud.google.com, create a project, enable the PageSpeed Insights API, and generate an API key under Credentials. It’s free.
FAQ
-
Does this plugin slow down my site?
-
No. Scans only run when you manually click “Run scan” in the admin panel. Nothing runs on the front end.
-
Is the malware scan automatic?
-
In the free version scans run on demand. Scheduled automatic scanning is available in Squish Site Patrol Patched.
-
What does the malware scanner actually check?
-
It compares every WordPress core file on your server against the official checksums published by WordPress.org. Any file that does not match gets flagged immediately.
-
Do you offer refunds?
-
All sales are final. We recommend trying the free version thoroughly before upgrading to Patched.
-
What is Squish Site Patrol Patched?
-
Patched is the paid tier of Squish Site Patrol at $15/month. It adds automatic scheduled scans, email reports, login monitoring, SSL expiry alerts, and wp-config.php permissions checking.
Reviews
There are no reviews for this plugin.
Contributors & Developers
“Squish Site Patrol” is open source software. The following people have contributed to this plugin.
Contributors
Translate “Squish Site Patrol” into your language.
Interested in development?
Browse the code, check out the SVN repository, or subscribe to the development log by RSS.
Changelog
1.0.0
- Initial release
- PageSpeed Insights integration with Core Web Vitals
- Security checker with 5 live checks
- WordPress core file integrity scanner
- PHP-in-uploads detection
- Squish Site Patrol Patched tier with login monitoring, SSL expiry alerts, and wp-config.php check